Can you spot when you're being phished? Take this quiz from Google and Jigsaw.
Here is an example of a spam email message, and eight points that show you this is fake:
- The Sender name does not match other emails from this sender.
- The email address does not match the Sender name.
- In this example, the email does not open in the same way other emails from this sender usually do (that is, with your name).
- Why is the domain name in parentheses?
- Your Drew email does not have a quota.
- Typographical errors are often an indicator of spam or phishing emails.
- The URL does not match typical Drew URL and is not secure (http - you should always look for https)
- The signature does not match standard emails from this department.
If you are ever suspicious of an email, it is better that you NOT click on any links or follow any instructions in the email. Contact the person or department the email is reportedly from via a different means, such as by phone. If you are concerned about the security of your password, navigate to the page in question yourself - not by following any links in the email - and change your password. As long as you have not clicked on any links or downloaded any attachments within a suspicious email, you can safely delete the message. (If you did follow a link or provide any sensitive information, go ahead and change your passwords. Consider running a virus scan. And depending on the scam, you may feel that some of the steps recommended in this USA Today article or this Google Support article are warranted.)
Please visit this article for additional examples and tips for recognizing phishing emails: https://www.bettercloud.com/monitor/c-suite-phishing-attack-examples/
This Gizmodo article does a nice job of summarizing new phishing tactics (posted 3/20/2019): https://gizmodo.com/how-phishing-scams-are-evolving-and-how-not-to-get-caug-1832618224